Incorrect warning msg about localhost access enabled

XMLWordPrintableJSON

    • Type: Bug
    • Resolution: Done
    • Priority: Major - P3
    • None
    • Affects Version/s: 2.4.3
    • Component/s: Internal Code, Security
    • None
    • Fully Compatible
    • ALL
    • Hide

      conn = startMongod( "--auth",
      "--port",
      27001,
      "--dbpath",
      "/data/db/test",
      "--setParameter",
      "enableLocalhostAuthBypass=0");

      var testDB = conn.getDB('test');
      testDB.foo.insert(

      {b:1}

      );
      print(tojson(testDB.foo.findOne()));

      This will print the warning while still disallowing the insert and find.

      Show
      conn = startMongod( "--auth", "--port", 27001, "--dbpath", "/data/db/test", "--setParameter", "enableLocalhostAuthBypass=0"); var testDB = conn.getDB('test'); testDB.foo.insert( {b:1} ); print(tojson(testDB.foo.findOne())); This will print the warning while still disallowing the insert and find.
    • Security E (01/01/16)
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      When disabling the localhost authentication exception the server still prints the warning:

      "note: no users configured in admin.system.users, allowing localhost access"

              Assignee:
              Rahul Dhodapkar (Inactive)
              Reporter:
              Andreas Nilsson (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: